• info
• discussion
• exploit
• solution
• references

FireBug Cross Zone Scripting Vulnerability

An attacker can exploit this issue by enticing an unsuspecting user to view a malicious page.

The following links provide a proof-of-concept that demonstrates this issue:

http://www.gnucitizen.org/projects/firebug-goes-evil/poc.htm
http://www.gnucitizen.org/projects/firebug-goes-evil/poc2.htm